Skip to content

Commit e421eaa

Browse files
davidantoonclaude
andcommitted
fix: make publish job install non-immutable on release branch
The publish job's first step ran `yarn install --immutable`, which fails on a long-lived auto-incrementing release branch whose committed yarn.lock lags the bumped package.json versions (stale @enclave-vm/*@npm:2.13.0 entries that a clean install prunes). Immutable mode forbids the prune, so the job died at setup before any version-bump/lock-sync step could run. Set `install: "false"` on Setup Node + Yarn and add an explicit `yarn install --no-immutable` step. The publish job is the source of truth for versions and rewrites the lock every run, so it self-heals drift instead of deadlocking. Immutable installs still guard normal PR/push CI. Co-Authored-By: Claude Opus 4.8 (1M context) <noreply@anthropic.com>
1 parent 19720be commit e421eaa

1 file changed

Lines changed: 10 additions & 0 deletions

File tree

.github/workflows/publish-release.yml

Lines changed: 10 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -76,6 +76,16 @@ jobs:
7676
with:
7777
node-version-file: ".nvmrc"
7878
registry-url: "https://registry.npmjs.org/"
79+
# Do NOT run an immutable install here: this is a long-lived,
80+
# auto-incrementing release branch. Its committed yarn.lock may lag the
81+
# bumped package.json versions, and this job rewrites the lock anyway.
82+
# An immutable install would fail before the version-bump/sync steps run.
83+
install: "false"
84+
85+
- name: Install dependencies
86+
# Mutable install: installs deps for nx/build AND self-heals any lockfile
87+
# drift left by a previous release before this run bumps the version.
88+
run: yarn install --no-immutable
7989

8090
- name: Update npm CLI for trusted publishing
8191
run: npm install -g npm@latest

0 commit comments

Comments
 (0)